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Abstract. Dependently typed A-calculi such as the Logical Framework 
(LF) are capable of representing relationships between terms through 
l/~) , types. By exploiting the "formulas-as-types" notion, such calculi can also 

encode the correspondence between formulas and their proofs in typing 

judgments. As such, these calculi provide a natural yet powerful means 

for specifying varied formal systems. Such specifications can be trans- 

I— -i • formed into a more direct form that uses predicate formulas over simply 

ryj ' typed A-terms and that thereby provides the basis for their animation 

O . using conventional logic programming techniques. However, a naive use 

of this idea is fraught with inefficiencies arising from the fact that de- 
pendently typed expressions typically contain much redundant typing 
^. . information. We investigate syntactic criteria for recognizing and, hence, 

^^ ' eliminating such redundancies. In particular, we identify a property of 

f^~ , bound variables in LF types called rigidity and formally show that Chech- 

ia ■ ing that instantiations of such variables adhere to typing restrictions is 

^^ ' unnecessary for the purpose of ensuring that the overall expression is 

i^^. , well-formed. We show how to exploit this property in a translation based 

f*^ ■ approach to executing specifications in the Twelf language. Recognizing 

redundancy is also relevant to devising compact representations of de- 
pendently typed expressions. We highlight this aspect of our work and 
discuss its connection with other approaches proposed in this context. 
•l-H 

X 

5_i ' 1 Introduction 

There is a significant, and growing interest in mechanisms for specifying, proto- 
typing and reasoning about formal systems that are described by syntax-directed 
rules. Dependently typed A-calculi such as the Logical Framework (LF) [HHP93 
provide many conveniences from a specification perspective in this context: such 
calculi facilitate the use of a higher-order approach to describing the syntax 
of formal objects, they allow relationships between terms to be captured in an 
elegant way through type dependencies, and they allow proof-checking to be 
realized through type-checking. Such calculi can also be given a logic program- 
ming interpretation by exploiting the isomorphism between formulas and types 
|How80] . The Twelf system |PS99j , based on this idea, has been used successfully 
in specifying, prototyping, and reasoning about varied formal systems. 



While a system like LF provides interesting and useful ways to factor typing 
properties of terms and relationships between terms, this ability is not essential 
to its specification applications. In particular, it is possible also to use predicate 
based descriptions over simply typed A-terms to similar effect. In fact, it is pos- 
sible to formally present a translation of dependently typed specifications into 
a predicate logic form that uses the properties of being a type and of being a 
term of a certain type [Fcl89 FM90 . Such a translation lends itself to the possi- 
bility of using an implementation of a conventional logic programming language 
like AProlog |NM88lGHN+08| to animate specifications written in LF [SBN10] . 
Moreover, if the translation preserves the structure of the original specification, it 
would be possible to view the dependently typed descriptions as meta-programs 
and to reason about them using techniques for reasoning about the generated 
predicate based specifications. 

Unfortunately, the reality with respect to a straightforward translation does 
not quite fit this promise. The essential source of the problem is the fact that 
expressions in a dependently typed language typically contain much redundant 
type information. When such information is preserved in a translation, it leads to 
a predicate logic program that is not efficient to execute. The resulting extrane- 
ous typing constraints destroy also the transparency of the correspondence, and 
thereby interfering with the meta-program view and the reasoning possibilities. 

These observations provide the motivation for the work we describe here: 
identifying redundancies in LF expressions. More specifically, we want to eluci- 
date syntactic criteria for determining such unnecessary information that can, 
for instance, be exploited in a translation based approach to implementing LF 
specifications. We describe a property of bound variables in LF types called rigid- 
ity and show in a formal sense that knowledge of the specific instantiations of 
such variables is unnecessary from the perspective of checking if the expression 
is well-formed. While our observations are driven by a particular application, 
they also have a relevance in other contexts such as that of devising compact 
representation of proofs Rcc08 . We discuss these connections in the paper. 

In the next section we describe the dependently typed A-calculus and LF. 
We then introduce a translation from LF to a predicate logic that preserves 
provability, and describe how redundancies in LF derivations can impact the 
performance of the generated logic program. In Section|4]we develop a technique 
for identifying and eliminating such redundancies. Then in Section [5] we show 
how it can be applied to improve the translation, and identify some important 
practical extensions to the translation. We conclude the paper with a discussion 
of possible future directions for this work. 



2 The Edinburgh Logical Framework 

The Edinburgh Logical Framework HHP93] (LF) is a dependently typed A- 
calculus with three categories of expressions: kinds, types or type families that 
are classified by kinds and objects or terms that are classified by types. We assume 
two denumerable sets of variables, one for objects and the other for types. We 



use x and y to denote object variables, u and v to denote type variables and w 
to denote either. Letting K range over kinds, A and B over types, and M and N 
over object terms, the syntax of LF expressions is given by the following rules: 



K 

A 
M 



Type | IIx:A.K 

u | Ux.A.B | Xx:A.B | A M 

x I Xx:A.M I M N 



Expressions of any of these kinds will be denoted by P and Q. Here, 77 and 
A are operators that associate a type with a variable and bind its free occur- 
rences over the expression after the period. We write P[Nx/xi, . . . ,N n /x n ] to 
denote a simultaneous substitution with renaming to avoid variable capture. We 
write A — > P for TIx:A.P when x does not appear free in P, and abbreviate 
IIxi.Ax. . . . nx n :A n .P by TIxTA.P. 

null-ctx 



h ■ ctx 
r h K kind h T ctx u ^ dom(r) 

h T, u : K ctx 

r \- A: Type h T ctx a; ^ dom(T) 

h T. x : A ctx 



kind-ctx 



type-ctx 



h T ctx . , . , r h A : Type P, a; : A h J^ iind . , . J 
type-Jcmd ^ — , pi-iond 



T h Type kind J " fh IIxA.K kind 

h r ctx u-. K e r , hPcb i:Aer 

var-fam t, var-obj 



T \- u:K P T h x:A p 

T \- A: Type T, x : A h B : Type 



pi-fam 



T \- A: Type T,x : A h B : K T ^ A : Tlx:B.K T h M : B , 

abs-fam — — — — — 7— — ~ n , fl app-fam 



T h (TJxiA.B) : Type 

r h (Ax:AB) : (IIx:A f3 .K) " rh(M): (^[M/x])' 3 

h A : Type T,x: Ah M : B T h M : IIxA.B T h N 

T h (Xx:A.M) : (nx:A^.B) & S ~° J T h (M N) : (B[N/x]) f 

Fig. 1. Rules for Inferring LF Assertions 



The type correctness of LF expressions is assessed relative to contexts that 
are finite collections of assignments of types and kinds to variables (we use • to 
denote the empty context). LF deals with assertions of the following four forms: 

h r ctx r h K kind r \- A: K r \- M : A 

The first assertion signifies that J 1 is a well-formed context. The remaining as- 
sertions mean respectively that, relative to a (well-formed) context T, K is a 
well-formed kind, A is a well-formed type of kind K and M is a well-formed 
object of type A. Figure Q] presents the rules for deriving such assertions. The 



inference rules allow for the derivation of an assertion of the form r h- M : A 
only when A is in normal form. To verify such an assertion when A is not in 
normal form, we first derive T h A : Type and then verify T h M : A' 3 . A 
similar observation applies to T h A : _K\ 

Well-typed LF expressions admit a /3?7-long form. Types of fin-long form 
(u Mi . . . M n ) are called base types. In the following, we shall only consider LF 
derivations whose end assertion only contains expressions in /3ry-long form. Notice 
that every expression in the entire derivation must then also be in /3-normal form. 
This in turn means that in judgments of the forms (Xx:A.B) : (IIx:A'.K) and 
(Xx:A.M) : (TIxiA'.B) it must be the case that A and A' are identical, and 
that normalization need not be considered in the use of the var-fam and var-obj 
rules. Additionally, we shall modify inference rules so that all expressions in the 
entire derivation remain in fin-long form — the resulting system is referred to 
as canonical LF. For objects, app-obj and var-obj are replaced by the following 
big-step application rule (which we refer to as backchaining due to its logic 
programming interpretation) : 

(y : IIxTb'.A) £f T h N x : B x ... T h N n : B n [N l /x l . . . JV^i/a^-i] 
r h M:A[N 1 /xi...N n /x n ] 

The rules for type families are changed in the same way. 

The logic programming interpretation of LF is based on viewing types as 
formulas. More specifically, a specification or program in this setting is given 
by a context. This starting context, also called a signature, essentially describes 
the vocabulary for constructing types and asserts the existence of particular 
inhabitants for some of these types. Against this backdrop, questions can be 
asked about the existence of inhabitants for certain other types. Formally, this 
amounts to asking if an assertion of the form T h M : A has a derivation. 
However, the object M is left unspecified — it is to be extracted from a successful 
derivation. Thus, the search for a derivation of the assertion is driven by the 
structure of A and the types available from the context. 

A concrete illustration of the paradigm is useful for later discussions. Con- 
sider a signature or context _T comprising the following assignments in sequence: 

nat : Type, z : not, s : not — )■ not, 
list : Type, nil : list, cons : nat — > list -^ list, 
append : list —J- list — > list —> Type, 
appNil : LIK -.list. append nil K K, 
appCons : nX-.nat.FILdist.TIK -.list. TIM -.list, 
(append L K M) -» 

(append (cons X L) K (cons X M)) 

We can ask if there is some term M such that the judgment 

fhM: append (cons z nil) (cons (s z) nil) (cons z (cons (s z) nil)) 



is derivable. 

Furthermore, as Twelf allows for instantiatable meta- variables in the type A, 
we can ask which list results from appending (cons z nil) and (cons (s z) nil)} 
in the following, L is such a variable: 

r \- M : append (cons z nil) (cons (s z) nil) L. 

Here Twelf responds by instantiating L to (cons z (cons (s z) nil)) 
and instantiating M with an LF object (proof term) of type 
append (cons z nil) (cons (s z) nil) (cons z (cons (s z) nil)). Some- 
times the logic program r does not constrain a meta-variable, and so it is left 
uninstantiated in the proof term. Here, the interpretation is that the proof term 
is valid for any instantiation of the meta-variable by a term of the right type. 

3 A translation to predicate logic 

We now consider translating LF specifications into the logic of higher-order 
hereditary Harrop formulas, also known as hohh logic [MNPS91] . Intuitively, 
this logic is similar to Horn clause logic, except that it allows predicates to 
have simply typed A-terms as arguments, it permits quantification over (non- 
predicate) function variables and it includes universal quantifiers and embedded 
implications in goals and the bodies of clauses. Althought hohh does not permit 
dependent types, it has been shown that these dependencies can be systemati- 
cally encoded by using predicates over the simpler form of A-terms. This encoding 
is particularly interesting because it provides a way to utilize efficient implemen- 
tations of hohh logic like the Teyjus system |GHN + 08] in realizing an LF-based 
logic programming language. 

The general idea of the encoding, first proposed by Felty Fcl89 FM90 , is to 
first encode LF objects and types in a way that erases type dependencies, and 
to recover those relationships in the encoding of LF type judgments. One can 
then prove that the encoding is sound and complete by providing a mappings 
between LF derivation and hohh derivations of the encoded judgments. However, 
it is important to note that in the perspective of using the encoding for logic 
programming, a stronger correctness result is needed. Instead of considering only 
closed LF assertions, i.e. checking a given type judgment, we are interesting in 
finding objects inhabiting a particular type, i.e. searching for a derivation of 
an LF assertion with a meta-variable for the object. Therefore, our correctness 
result should also state that any instantiation of that meta-variable is actually 
an LF encoding. 

We shall only give an intuition and example of our translation, referring 
the reader to |SnolOj for details and proofs. Our translation proceeds in the 
same general fashion as Felty's: LF objects and types are first encoded as 
hohh terms. Next the hastype predicate relates hohh terms representing LF ob- 
jects with hohh terms representing the LF types of those objects. For instance, 
given an LF object z of type nat, we relate hohh encodings z' and not' thus: 
hastype z' not' ' . As an example, the Twelf specification of append translates into 



hastype z nat 

Vn. hastype n nat D hastype (s n) nat 

hastype nil list 

Vn. hastype n nat D VZ. hastype I list D hastype (cons n I) list 

VZ. hastype I list D hastype (appNil Z) (append nil I Z) 

Vx. hastype x nat D VZ. hastype I list D Vfc. hastype k list D 

Vm. hastype m list D Va. hastype a (append I k m) D 
hastype (appCons x I k m a) (append (cons x I) k (cons x m)) 



Fig. 2. Simple translation of the LF specification for append 



the clauses in Figure From these clauses, we can, for example, derive the goal 
hastype (cons (s z) nil) list and we could search for terms X satisfying the 
following goal: 

hastype X (append (cons z nil) (cons (s z) nil)(cons z (cons (s z) nil))) 

Unfortunately, this program does not correspond exactly to the usual append 
logic program in hohh. Specifically, whenever a goal hastype p (append I k m) is 
proved, each list Z, k, and m is "type-checked" by deriving a proof of, for example, 
the subgoal hastype I list. This involves a recursion over the entire structure of 
the list, and thereby introduces a quadratic complexity to the fundamentally 
linear operation of appending lists. 

As we shall see, a meta-theoretical analysis of LF derivations can be used to 
justify the removal of some of those typing constraints. This study of derivations 
is best carried out directly in LF, leading to interesting results in their own right, 
some of which may be applicable beyond our translation problem. 



4 Redundancy in LF derivations 

The redundancy evoked above can be viewed from the LF standpoint alone. 
Consider a variable y of type llx:B.A which might be used to derive some 
judgment D-M: A[Ni/xi . . . N n /x n }: 

(y : nx^.A) eT £ h N l :B l ... £ h N n : B n [N l /x l . . . iV ra _ 1 /x»_ 1 ] 
r h M :A[N 1 /x 1 ...N n /x n ] 

It is reasonable to assume that when checking that an object has a particular 
type, or when searching for objects of a particular type, the type has been 
checked to be valid first, i.e. that r h A : Type has a derivation. It is often 
the case that some of the typing judgments r h iVj : Bi are superfluous in 
the sense that they can be found almost verbatim in the derivation that A is a 
type. Furthermore, it is possible to detect statically many of those cases, just by 
examining the occurrences of Xi in A. The idea is that if Xi occurs in A in such 



a way that Ni will be found in A\N\/x\ ■ ■ ■ N n /x n ], whatever the other Nj are, 
then the premise Xi : N can be safely omitted. 

Formally, we use the notion of a rigid occurrence that is expressed by the 
judgment x;-;xi\Z B defined in Figure [3] to characterize some of these cases. 



%/i distinct elements of 8 y <£ r and T; 5; x \Zo Mi for some i 

■ INIT n -^ — -r APP 



r- 8- x Co x y r-,S;x\z yM 

r;S,y;x\Zo M 



■ ABS 



r-8-x \Zo Xy-.A.M 
Fig. 3. Rigidly occurring variables in LF objects 



Theorem 1. Let N be a vector of LF objects, x a vector of variables, and B 
of canonical LF types, all of same length. Let r and A be LF contexts, 5 be 
dom(A). Let To = X\ : B\, . . . ,x n : B n . Let LIx:B.A be a canonical type, where 
A is a base type. Suppose that there are derivation of: 

- x; 5; Xi E D M 

- r,r ,A V- M : A 

- r,A[N/x] h M[N/x] : A[N/x] 

Then there is a derivation of T \- Ni : Bi\Ni/x\, . . . t Ni-i/xi-i]. 

This theorem establishes a sort of substitution inversion: having an abstract 
and an instantiated derivation, we show that one can recover the derivation that 
was substituted, that is T \- N : Bi[N\/x\, ■ ■ ■ , Ni-i/xi—i], Given the nature of 
that statement, it is not surprising that we find in init a condition reminiscent of 
higher-order patterns, a fragment of higher-order unification where most general 
unifiers are guaranteed, thanks to the ability to invert substitutions. 

Proof (Theorem^. We proceed by induction on the rigidity derivation. Walking 
simultaneously through the two LF derivations, following the path given by 
the rigidity derivation, we eventually reach a point where we have on the one 
hand a derivation of Xi y : T[yi/zi . . . yk/zk] with B h — LTz:C.T, and on the 
other a derivation of N y : T[yx/zi . . . yk/zk[[N\/x\ . . . Ni-i/xi-i]. The bound 
variables y being distinct, the substitution [yi/z\ . . . yk/zk] is simply a renaming 
and can be inverted. We obtain a derivation of N z : T[N\/x\ . . . A^_i/xj_i] 
and finally Ni : B t [Ni/xi . . . N^/xi-i}. D 

Remark 1. Note that it would be unsound to allow in init any application x N 
rather than x y for distinct bound variables y. With such a rule the rigidity 
lemma the above theorem is no longer true. For example, in a signature with 



num : not — > Type and num n : IIn:nat.(num n), we obtain a counter-example 
with M = Xx. x z and N — t: we have f h (t z) : (num z) and 

r, x : (nat — > num, z) h (a; z) : (num z) 

but not Z 1 h t : nat — > num z. 



4.1 Application to proof search 

There are several ways to exploit this property about LF derivations, and not 
just in the context of a translation, but in the more general setting of proof 
search. We come back to the problem of eliminating redundancies in the rule 
corresponding to backchaining on some element of the LF context: 

(y : LIxTb'.A) eT r h N l :B l ... £ h N n : B n [N^/x 1 . . . iV n -i/a; n -i] 

r h M:A[N 1 /x 1 ...N n /x n ] 

Eliminating redundancies here corresponds to limiting the number of redundant 
subderivations investigated during search. 

We first consider recognizing rigid occurrences of some variables Xi in the 
target type A. We formalize this as x\Xi \Zt A, defined by the following rules: 

r; ■; x C M t for some Mj ^ r,y;xr t B 

r-xn t cll r;x\Z t IIy.A.B 

Theorem 2. Let N be a vector of LF objects, x a vector of variables, and B 
of canonical LF types, all of same length. Let r and A be LF contexts, 5 be 
dom(A). Let Fq = X\ : B\, . . . ,x n : B n . Let LIx:B.A be a canonical type, where 
A is a base type. Suppose that there are derivation of: 

X , Xi I — A 

- r,r ,^h A : Type 

- r,A[N/x] h A[N/x] : Type 

Then there is a derivation of r h Ni : Bi[N\/xi, . . . , iVj_i/xi_i]. 

Proof. Similarly to Theorem [TJ we walk through the type structure, following 
the path given by rigidity. Eventually, we reach APP t and invoke directly the 
previous theorem. 

From a practical viewpoint, this theorem allows us to statically analyze an 
LF specification (which constitutes the initial LF context) and discard some 
premises of the backchaining rules derived from that specification, without losing 
soundness. This is currently done in our translation. 

There are yet more redundancies in this same style. We have used a 
rigid occurrence of some variable x$ in A to retrieve a typing derivation for 
Ni from the derivation that A[Ni/x±, . . . , iVj_i/xj_i] is a valid type, but 



we might also extend the application of rigidity to retrieve some informa- 
tion from the typing derivation for some Nj. Given that we already have a 
derivation of f h Bx\.B\. . . . IIx n :B n .A : Type, we clearly have a deriva- 
tion of -T, x\ : Bi,. . . ,Xj-i : -Bj-i h Bj : Type. We also have a deriva- 
tion of r h Nj : Bj[Ni/xi,. . .,Nj-i/xj-i], either directly as one of the 
premises when Xj is not rigid in A or through Theorem [5] when the correspond- 
ing premise has been elided. From this derivation we can also conclude that 
r h Bj[Ni/xi, . . . , Nj-i/xj-i] : Type has a derivation. We can hence finally 
apply Theorem [5] to these derivations to conclude that we do indeed have a 
derivation of T h N : Bi[Ni/xi, . . . , Ni-i/xi-i]. 

4.2 Related work 

Reed [Rcc08 approaches the problem of eliminating redundancies in LF from a 
different perspective, and with a different goal: that of reducing the size of proof- 
terms yielded during logic programming search, motivated by the fact that in 
some applications proof-terms must be transmitted or manipulated. He does 
so by developing a technique for identifying redundancies in terms, through a 
notion of strictness that is similar to rigidity, that he uses to identify sub-terms 
of LF objects that can be reconstructed, either from the types of nearby sub- 
terms, or from the type of an object itself. He describes two modes for omitting 
sub-terms, synthesis based omission and inheritance based omission, and uses 
strictness to determine which kind of omission, if any, is possible. In omission by 
inheritance, knowledge of a term's type is used to elide (and later reconstruct) 
type derivations for sub-terms. For example, if x + y is known to have type nat, 
then we automatically known that x has type not, given that + has type not — > 
not —> not. This is similar to what we described in Theorem [2] In omission 
by synthesis, the types of nearby sub-terms are used to elide and eventually 
reconstruct a given sub-term, when the sub-term being omitted appears (in a 
sufficient manner) in said type. For example, if x — y is well-typed and x has 
type A we can deduce that y has type A as well. This is similar to the additional 
application of rigidity that we have described. 

The main difference with Reed's work lies in the motivation. Reeds work 
focuses on optimizing an LF object (that is, a proof term) for size by eliminating 
redundant parts of the object itself, and without particular concern for how such 
a term is discovered. We are concerned with optimizing search, and we use the 
redundancy analysis to avoid searching for parts of the typing derivation, but 
we still produce a complete LF proof term. 

5 Optimizing the Twelf translation 

We have presented a technique for identifying redundancies in LF derivations 
and identified a few ways to use it in the context of proof-search. Carrying 
these observations to the context of our translation to hohh — where we are also 
concerned with ensuring that all hohh objects discovered as instantiations of 



meta-variables actually correspond to encodings of LF objects — is not entirely 
trivial. 

5.1 Meta-variables in objects 

Building on Theorem^ we have developed in ISBNIOj an optimized translation 
from LF specifications to hohh logic. The part of this translation that removes 
redundant typing judgments is based on the mapping on types presented in 
Figure 2J The translation of context items of the form x : A in an LF specifi- 
cation is given by (|L4]]m x), where (} denotes an empty sequence of variables; 
this operation is lifted to LF specifications by distribution to each item in the 
specification. The translation of a type A for which an inhabitant M is sought is 
correspondingly given by ((L4J~ (M)). Notice that these translations are guided 
solely by the type A; this is highlighted by the fact that the translation actually 
returns a formula abstracted over the proof-term. This translation is illustrated 
by its application to the example Twelf specification considered in Section [5] that 
yields the clauses shown in Figure [5J which should be contrasted with the ones 
in Figure [5] 



[\M.\/x.lAj-{x)DlBl+ x {M x) otherwise 
l N lr ~ ^ M - hastype M (TV) if TV is a base type 

[nx:A.Bj- ■- \M. \/x. [Aj + (x) D \B\~(M x) 

[TV]" := AM. hastype M (N) if TV is a base type 



Fig. 4. Optimized translation of LF specifications and judgments to hohh 



hastype z nat, Vn. hastype n not D hastype (s n) nat, 

hastype nil list, Vn. hastype n nat __) VZ. hastype I list D hastype (cons n I) list, 

VZ. T __) hastype (appNil 1) (append nil I I), 

Vx. T D VZ. T D Vfc. T D Vm. T D Va. hastype a (append I k m) __) 

hastype (appCons x I k m a) (append (cons x I) k (cons x m)) 



Fig. 5. Optimized translation of the LF specification for append 



We have proved the optimized translation correct. The statement of its cor- 
rectness is slightly complicated by the fact that it requires that all hohh terms 
correspond to LF expressions, so that we can use the translation to generate 
actual LF proof terms. 



Theorem 3 (Optimized translation correctness). Let r be an LF specifi- 
cation such that h r ctx has a derivation, A an LF type such that r h A : Type 
has a derivation. Then, for any LF object M such that f h M : A has a deriva- 
tion, [r]+ — > \M : A}~ is derivable. Moreover, if [r]+ — > |A]~(M) for an 
arbitrary hohh term M , then it must be that M = (M 1 ) for some canonical LF 
object such that r h M' : A has a derivation. 

The proof of the following relies on Theorem [2] to recover typing judgments 
that have been optimized away. In addition, it shows that hohh terms must 
be well-formed LF objects. Note that this theorem implies that proof-search 
for encoded LF typing judgments will always fully instantiate the meta-variable 
corresponding to the object — otherwise, a dummy instantiation of that variable 
would still yield a valid derivation invalidating our theorem. 

Unfortunately, we have not been able to exploit the extended redundancy 
analysis to further optimize our translation; it has proven difficult to ensure that 
hohh meta-variables are instantiated by LF encodings while still maintaining an 
efficient translation. This is due to the fact that, in eliminating redundancies in 
this fashion, we must eventually obtain a typing derivation in a setting without 
these optimizations, which could reduce or even destroy the effectiveness of such 
eliminations. 

5.2 Meta-variables in types 

Note that, while we have proved Theorem [3] for closed LF types, we have not 
yet considered the meaning of meta-variables in such types, what it means when 
a meta-variable is not bound during search, nor whether bindings for them are 
correct. Here there are two approaches. 

Recall the interpretation of remaining meta-variables after proof-search, in 
both AProlog and Twelf: the goal actually holds for any term t of the right 
type. In particular, upon successful AProlog search for an encoded LF query, 
remaining meta-variables in the type can be instantiated by any encoding of an 
LF object. This can be done after the main proof search, by searching for an 
inhabitant of the corresponding type. We can then extend this treatment even 
to meta-variables that are bound during search, by simply checking after search 
succeeds that the meta-variables have been properly instantiated. Once we have 
checked that the initial type has been instantiated into a closed valid type in 
that way, Theorem [3] applies. In practice, this process is less intensive than proof 
search proper, and tends not to be overly expensive. 

Going further, it should in fact be the case that, under our translations, no 
meta-variable could possibly be bound to the encoding of an LF term of incorrect 
type or to something that is not even an encoding. The intuition here is that 
the only time a meta-variable is bound in the logic programs generated by the 
translation is when it is matched with the head of a clause. Since the original 
specification is valid, any such matching clause should impose only the correct 
type on the meta-variable. However, the statement and proof of this theorem 
is not at all obvious, and is further stymied by the fact that it isn't clear how 
exactly this extension to Twelf, which we are seeking to emulate, should behave. 



6 Conclusion and Future Work 

Wc have considered in this paper a translation from specifications in the depen- 
dency typed A-calculus LF to a predicate logic over simply typed A-terms. This 
translation is motivated by a desire to utilize implementations of proof search 
in the latter logic to realize LF-based proof search. A key task in making such 
a translation effective is that of identifying and, subsequently, eliminating re- 
dundancies in LF expressions and derivations. Specifically, we have described a 
property of bound variables in types that makes it unnecessary to type-check 
their instantiations in ensuring that expressions that use such types are well- 
formed. We note that our proof of such redundancy is based directly on the 
properties of LF expressions and derivations. Thus, our observation is of larger 
interest than just the translation task at hand. 

The work described here can be extended in at least two ways. First, it 
should be possible to enhance our techniques for identifying redundancies. We 
have presented one such extension already through a more inclusive definition of 
the rigidity property. However LF derivations contain significant redundancies 
and we believe it is possible to carry out a richer analysis towards identifying 
these based on syntactic properties. Second, we can think of applying the specific 
techniques developed for detecting such redundancies to contexts different from 
translation. We have already discussed the relationship between our work and 
that of Reed. An understanding of the differences between our system and his 
could eventually lead to a better, and provably correct, ability to shorten LF 
proof terms that are needed in applications such as that of proof-carrying code 
|Nec97j . Moreover the usefulness of these ideas need not be limited to transla- 
tion and compact representation of LF expressions: any application of LF that 
requires type-checking, such as automatic meta-theorem proving, could benefit 
from methods for discovering repetitive type information. 
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